Fighting dictionary attacks with Sshutout and Fail2ban

Closing the Book

Article from Issue 91/2008

Author(s): Charly Kühnast

Services that require a username and password for login are potential targets for dictionary attacks. Sshutout and Fail2ban introduce time penalties for invalid attempts.

Sshutout [1] is a daemon written in C that checks a logfile for invalid SSH logins at frequent intervals. If Sshutout discovers a pattern of failed login attempts by a client, it blocks the client according to iptables rules. After a configurable delay, the penalty is automatically revoked.

Activating the Ban

All it takes to install the 32KB tarball is the usual make; make install.

The daemon is located in /usr/local/sbin after the install, and its configuration file is /etc/sshutout.conf.

[...]

Use Express-Checkout link below to read the full article (PDF).

Buy Linux Magazine

SINGLE ISSUES

Print Issues

Digital Issues

SUBSCRIPTIONS

Print Subs

Digisubs

TABLET & SMARTPHONE APPS

US / Canada

UK / Australia

Support Our Work

Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.

News

Linux Mint 22.3 Now Available with New Tools

Administration , Linux mint , Tools

Linux Mint 22.3 has been released with a pair of new tools for system admins and some pretty cool new features.
New Linux Malware Targets Cloud-Based Linux Installations

Cloud , Linux , malware

VoidLink, a new Linux malware, should be of real concern because of its stealth and customization.
Say Goodbye to Middle-Mouse Paste

Firefox , Gnome , Security

Both Gnome and Firefox have proposed getting rid of a long-time favorite Linux feature.
Manjaro 26.0 Primary Desktop Environments Default to Wayland

Desktop , Manjaro Linux , Wayland

If you want to stick with X.Org, you'll be limited to the desktop environments you can choose.
Mozilla Plans to AI-ify Firefox

Artificial Inte... , Firefox , privacy

With a new CEO in control, Mozilla is doubling down on a strategy of trust, all the while leaning into AI.
Gnome Says No to AI-Generated Extensions

Artificial Inte... , Gnome , LLM

If you're a developer wanting to create a new Gnome extension, you'd best set aside that AI code generator, because the extension team will have none of that.
Parrot OS Switches to KDE Plasma Desktop

Linux , Parrot OS , Plasma

Yet another distro is making the move to the KDE Plasma desktop.
TUXEDO Announces Gemini 17

Hardware , laptop , Linux

TUXEDO Computers has released the fourth generation of its Gemini laptop with plenty of updates.
Two New Distros Adopt Enlightenment

Desktop , Enlightenment , Linux

MX Moksha and AV Linux 25 join ranks with Bodhi Linux and embrace the Enlightenment desktop.
Solus Linux 4.8 Removes Python 2

Operating Systems , Python , Solus Linux

Solus Linux 4.8 has been released with the latest Linux kernel, updated desktops, and a key removal.

Fighting dictionary attacks with Sshutout and Fail2ban

Closing the Book

Activating the Ban

Buy Linux Magazine

Related content

Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters

Support Our Work

News

Linux Mint 22.3 Now Available with New Tools

New Linux Malware Targets Cloud-Based Linux Installations

Say Goodbye to Middle-Mouse Paste

Manjaro 26.0 Primary Desktop Environments Default to Wayland

Mozilla Plans to AI-ify Firefox

Gnome Says No to AI-Generated Extensions

Parrot OS Switches to KDE Plasma Desktop

TUXEDO Announces Gemini 17

Two New Distros Adopt Enlightenment

Solus Linux 4.8 Removes Python 2

Fighting dictionary attacks with Sshutout and Fail2ban

Closing the Book

Activating the Ban

Buy Linux Magazine

Related content

Subscribe to our Linux Newsletters Find Linux and Open Source Jobs Subscribe to our ADMIN Newsletters

Support Our Work

News

Tag Cloud

Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters